How to check available security updates

Check available security updates for CentOS 7.

Operating system.

$ cat /etc/centos-release
CentOS Linux release 7.6.1810 (Core)

Initial steps

Install Extra Packages for Enterprise Linux (EPEL) repository as it provides update notices.

$ sudo yum --assumeyes install epel-release
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: ftp.man.poznan.pl
 * extras: ftp.man.poznan.pl
 * updates: ftp.man.poznan.pl
Resolving Dependencies
--> Running transaction check
---> Package epel-release.noarch 0:7-11 will be installed
--> Finished Dependency Resolution

Dependencies Resolved

==================================================================================================================================================================
 Package                                    Arch                                 Version                               Repository                            Size
==================================================================================================================================================================
Installing:
 epel-release                               noarch                               7-11                                  extras                                15 k

Transaction Summary
==================================================================================================================================================================
Install  1 Package

Total size: 15 k
Installed size: 24 k
Downloading packages:
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
  Installing : epel-release-7-11.noarch                                                                                                                       1/1 
  Verifying  : epel-release-7-11.noarch                                                                                                                       1/1 

Installed:
  epel-release.noarch 0:7-11                                                                                                                                      

Complete!

Update package cache.

$ sudo yum makecache fast
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
epel/x86_64/metalink                                                                                                                                        |  29 kB  00:00:00     
 * base: ftp.icm.edu.pl
 * epel: ftp.icm.edu.pl
 * extras: mirror-pl.kielcetechnologypark.net
 * updates: mirror-pl.kielcetechnologypark.net
base                                                                                                                                                        | 3.6 kB  00:00:00     
epel                                                                                                                                                        | 5.3 kB  00:00:00     
extras                                                                                                                                                      | 2.9 kB  00:00:00     
updates                                                                                                                                                     | 2.9 kB  00:00:00     
(1/3): epel/x86_64/updateinfo                                                                                                                               | 1.0 MB  00:00:00     
(2/3): epel/x86_64/group_gz                                                                                                                                 |  90 kB  00:00:00     
(3/3): epel/x86_64/primary_db                                                                                                                               | 6.9 MB  00:00:01     
Metadata Cache Created

Display summary information

Display summary information on all provided advisories.

$ sudo yum --cacheonly updateinfo summary all
Loaded plugins: fastestmirror
Updates Information Summary: all
    1673 New Package notice(s)
     253 Security notice(s)
         114 None Security notice(s)
           3 Critical Security notice(s)
          29 Important Security notice(s)
          70 Moderate Security notice(s)
          37 Low Security notice(s)
    1295 Bugfix notice(s)
    1180 Enhancement notice(s)
updateinfo summary done

Display summary information on all provided advisories excluding packages that are already installed.

$ sudo yum --cacheonly updateinfo summary available
Loaded plugins: fastestmirror
Updates Information Summary: available
    1673 New Package notice(s)
     251 Security notice(s)
         113 None Security notice(s)
           3 Critical Security notice(s)
          28 Important Security notice(s)
          70 Moderate Security notice(s)
          37 Low Security notice(s)
    1295 Bugfix notice(s)
    1180 Enhancement notice(s)
updateinfo summary done

Display summary information on advisories related to packages that are already installed.

$ sudo yum --cacheonly updateinfo summary installed
Loaded plugins: fastestmirror
Updates Information Summary: installed
    3 New Package notice(s)
    4 Security notice(s)
        1 None Security notice(s)
        1 Critical Security notice(s)
        1 Important Security notice(s)
        1 Moderate Security notice(s)
    1 Bugfix notice(s)
    1 Enhancement notice(s)
updateinfo summary done

Display summary information on advisories related to packages that can be updated.

$ sudo yum --cacheonly updateinfo summary updates  
Loaded plugins: fastestmirror
Updates Information Summary: updates
    1 Critical Security notice(s)
    1 Enhancement notice(s)
updateinfo summary done

List advisories

List every provided advisory.

$ sudo yum --cacheonly updateinfo list all 
Loaded plugins: fastestmirror
  FEDORA-EPEL-2016-b92b91098f newpackage     0ad-0.0.20-4.el7.x86_64
  FEDORA-EPEL-2017-d960d7834c enhancement    0ad-0.0.22-1.el7.x86_64
  FEDORA-EPEL-2016-b92b91098f newpackage     0ad-data-0.0.20-1.el7.noarch
  FEDORA-EPEL-2017-d960d7834c enhancement    0ad-data-0.0.22-1.el7.noarch
  FEDORA-EPEL-2016-6e37f92d4b bugfix         0install-2.11-1.el7.x86_64
  FEDORA-EPEL-2016-8229efcf3a enhancement    2048-cli-0.9.1-1.el7.x86_64
  FEDORA-EPEL-2016-8229efcf3a enhancement    2048-cli-nocurses-0.9.1-1.el7.x86_64
  FEDORA-EPEL-2016-df9b446811 enhancement    2ping-3.2.1-2.el7.noarch
  FEDORA-EPEL-2016-7b134b993d bugfix         389-admin-1.1.46-1.el7.x86_64
[...]
i FEDORA-EPEL-2015-90d91da479 newpackage     apiextractor-0.10.10-10.el7.x86_64
i FEDORA-EPEL-2019-d4f26180c3 newpackage     coturn-4.5.1.1-1.el7.x86_64
i FEDORA-EPEL-2015-0599       bugfix         hiredis-0.12.1-1.el7.x86_64
i FEDORA-EPEL-2018-87d4d9304b newpackage     libdnet-1.12-0.13.1.el7.x86_64
i FEDORA-EPEL-2019-aa84623a4e Moderate/Sec.  libmspack-0.5-0.0.7.alpha.el7.x86_64
i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-1:1.16.1-1.el7.x86_64
i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-all-modules-1:1.16.1-1.el7.noarch
i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-filesystem-1:1.16.1-1.el7.noarch
i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-image-filter-1:1.16.1-1.el7.x86_64
i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-perl-1:1.16.1-1.el7.x86_64
i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-xslt-filter-1:1.16.1-1.el7.x86_64
i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-mail-1:1.16.1-1.el7.x86_64
i FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-stream-1:1.16.1-1.el7.x86_64
i FEDORA-EPEL-2019-0f4cca7837 enhancement    python-srpm-macros-3-23.el7.noarch
i FEDORA-EPEL-2017-017fbc40e8 None/Sec.      supervisor-3.1.4-1.el7.noarch
i FEDORA-EPEL-2017-56ca95fe85 Critical/Sec.  varnish-4.0.5-1.el7.x86_64
i FEDORA-EPEL-2017-56ca95fe85 Critical/Sec.  varnish-libs-4.0.5-1.el7.x86_64
[...]
  FEDORA-EPEL-2016-f08257b92c newpackage     zulucrypt-devel-5.0.0-3.20160802git064e9db.el7.x86_64
  FEDORA-EPEL-2016-b072b4c9c7 enhancement    zulucrypt-devel-5.0.1-1.el7.x86_64
  FEDORA-EPEL-2016-f08257b92c newpackage     zulucrypt-doc-5.0.0-3.20160802git064e9db.el7.noarch
  FEDORA-EPEL-2016-b072b4c9c7 enhancement    zulucrypt-doc-5.0.1-1.el7.noarch
  FEDORA-EPEL-2016-f08257b92c newpackage     zulucrypt-libs-5.0.0-3.20160802git064e9db.el7.x86_64
  FEDORA-EPEL-2016-b072b4c9c7 enhancement    zulucrypt-libs-5.0.1-1.el7.x86_64
  FEDORA-EPEL-2016-7691119a3a enhancement    zvbi-0.2.35-1.el7.x86_64
  FEDORA-EPEL-2016-7691119a3a enhancement    zvbi-devel-0.2.35-1.el7.x86_64
  FEDORA-EPEL-2016-7691119a3a enhancement    zvbi-fonts-0.2.35-1.el7.noarch
updateinfo list done

List every provided advisory excluding packages that are already installed.

$ sudo yum --cacheonly updateinfo list available
Loaded plugins: fastestmirror
FEDORA-EPEL-2016-b92b91098f newpackage     0ad-0.0.20-4.el7.x86_64
FEDORA-EPEL-2017-d960d7834c enhancement    0ad-0.0.22-1.el7.x86_64
FEDORA-EPEL-2016-b92b91098f newpackage     0ad-data-0.0.20-1.el7.noarch
FEDORA-EPEL-2017-d960d7834c enhancement    0ad-data-0.0.22-1.el7.noarch
FEDORA-EPEL-2016-6e37f92d4b bugfix         0install-2.11-1.el7.x86_64
FEDORA-EPEL-2016-8229efcf3a enhancement    2048-cli-0.9.1-1.el7.x86_64
FEDORA-EPEL-2016-8229efcf3a enhancement    2048-cli-nocurses-0.9.1-1.el7.x86_64
FEDORA-EPEL-2016-df9b446811 enhancement    2ping-3.2.1-2.el7.noarch
FEDORA-EPEL-2016-7b134b993d bugfix         389-admin-1.1.46-1.el7.x86_64
[...]
FEDORA-EPEL-2016-f08257b92c newpackage     zulucrypt-devel-5.0.0-3.20160802git064e9db.el7.x86_64
FEDORA-EPEL-2016-b072b4c9c7 enhancement    zulucrypt-devel-5.0.1-1.el7.x86_64
FEDORA-EPEL-2016-f08257b92c newpackage     zulucrypt-doc-5.0.0-3.20160802git064e9db.el7.noarch
FEDORA-EPEL-2016-b072b4c9c7 enhancement    zulucrypt-doc-5.0.1-1.el7.noarch
FEDORA-EPEL-2016-f08257b92c newpackage     zulucrypt-libs-5.0.0-3.20160802git064e9db.el7.x86_64
FEDORA-EPEL-2016-b072b4c9c7 enhancement    zulucrypt-libs-5.0.1-1.el7.x86_64
FEDORA-EPEL-2016-7691119a3a enhancement    zvbi-0.2.35-1.el7.x86_64
FEDORA-EPEL-2016-7691119a3a enhancement    zvbi-devel-0.2.35-1.el7.x86_64
FEDORA-EPEL-2016-7691119a3a enhancement    zvbi-fonts-0.2.35-1.el7.noarch
updateinfo list done

List advisories for packages that are already installed.

$ sudo yum --cacheonly updateinfo list installed
Loaded plugins: fastestmirror
FEDORA-EPEL-2015-90d91da479 newpackage     apiextractor-0.10.10-10.el7.x86_64
FEDORA-EPEL-2019-d4f26180c3 newpackage     coturn-4.5.1.1-1.el7.x86_64
FEDORA-EPEL-2015-0599       bugfix         hiredis-0.12.1-1.el7.x86_64
FEDORA-EPEL-2018-87d4d9304b newpackage     libdnet-1.12-0.13.1.el7.x86_64
FEDORA-EPEL-2019-aa84623a4e Moderate/Sec.  libmspack-0.5-0.0.7.alpha.el7.x86_64
FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-1:1.16.1-1.el7.x86_64
FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-all-modules-1:1.16.1-1.el7.noarch
FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-filesystem-1:1.16.1-1.el7.noarch
FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-image-filter-1:1.16.1-1.el7.x86_64
FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-perl-1:1.16.1-1.el7.x86_64
FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-http-xslt-filter-1:1.16.1-1.el7.x86_64
FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-mail-1:1.16.1-1.el7.x86_64
FEDORA-EPEL-2019-6ca75fc39a Important/Sec. nginx-mod-stream-1:1.16.1-1.el7.x86_64
FEDORA-EPEL-2019-0f4cca7837 enhancement    python-srpm-macros-3-23.el7.noarch
FEDORA-EPEL-2017-017fbc40e8 None/Sec.      supervisor-3.1.4-1.el7.noarch
FEDORA-EPEL-2017-56ca95fe85 Critical/Sec.  varnish-4.0.5-1.el7.x86_64
FEDORA-EPEL-2017-56ca95fe85 Critical/Sec.  varnish-libs-4.0.5-1.el7.x86_64
updateinfo list done

List advisories for packages that can be updated.

$ sudo yum --cacheonly updateinfo list updates
Loaded plugins: fastestmirror
FEDORA-EPEL-2019-020e5a5f9c enhancement   epel-release-7-12.noarch
FEDORA-EPEL-2017-56ca95fe85 Critical/Sec. varnish-docs-4.0.5-1.el7.x86_64
updateinfo list done

Display advisory information

Display detailed information about specific advisory.

$ sudo yum --cacheonly updateinfo info all --advisory=FEDORA-EPEL-2019-020e5a5f9c
Loaded plugins: fastestmirror

===============================================================================
  epel-release-7-12
===============================================================================
  Update ID : FEDORA-EPEL-2019-020e5a5f9c
    Release : Fedora EPEL 7
       Type : enhancement
     Status : stable
     Issued : 2019-10-04 20:28:32
    Updated : 2020-01-09 00:11:30Description : Add in &infra and content variables to better understand users
            : of EPEL.
   Severity : None
  Installed : false
updateinfo info done
$ sudo yum --cacheonly updateinfo info all --advisory=FEDORA-EPEL-2017-56ca95fe85
Loaded plugins: fastestmirror

===============================================================================
  varnish-4.0.5-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2017-56ca95fe85
    Release : Fedora EPEL 7
       Type : security
     Status : stable
     Issued : 2017-08-04 13:50:14
    Updated : 2017-08-03 11:07:37       Bugs : 1477222 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests
            : 1477699 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests [epel-all]
Description : New upstream release. This is a security release, with a fix for
            : a crash bug that might be used in a denial of
            : service attack. Details from the upstream project
            : are found here:
            : 
            : http://varnish-cache.org/security/VSV00001.html
   Severity : Critical
  Installed : true
updateinfo info done

Display detailed information about every provided advisory.

$ sudo yum --cacheonly updateinfo info all 
Loaded plugins: fastestmirror

===============================================================================
  0ad-0.0.20-4.el7 0ad-data-0.0.20-1.el7 miniupnpc-2.0-1.el7 mozjs31-31.2.0-8.el7 nvidia-texture-tools-2.0.8-13.el7
===============================================================================
  Update ID : FEDORA-EPEL-2016-b92b91098f
    Release : Fedora EPEL 7
       Type : newpackage
     Status : stable
     Issued : 2016-07-06 06:25:28
    Updated : 2016-07-05 16:40:48Description : Initial 0ad build for EPEL 7.
   Severity : None
  Installed : false

===============================================================================
  0ad-0.0.22-1.el7 0ad-data-0.0.22-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2017-d960d7834c
    Release : Fedora EPEL 7
       Type : enhancement
     Status : stable
     Issued : 2017-08-11 17:46:41
    Updated : 2020-01-09 00:13:57Description : Update to 0.0.22
   Severity : None
  Installed : false
[...]
===============================================================================
  zvbi-0.2.35-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2016-7691119a3a
    Release : Fedora EPEL 7
       Type : enhancement
     Status : stable
     Issued : 2016-03-04 18:26:56
    Updated : 2020-01-09 00:12:57Description : Update to 0.2.35
   Severity : None
  Installed : false
updateinfo info done

Display detailed information about every provided advisory excluding packages that are already installed.

$ sudo yum --cacheonly updateinfo list available
Loaded plugins: fastestmirror

===============================================================================
  0ad-0.0.20-4.el7 0ad-data-0.0.20-1.el7 miniupnpc-2.0-1.el7 mozjs31-31.2.0-8.el7 nvidia-texture-tools-2.0.8-13.el7
===============================================================================
  Update ID : FEDORA-EPEL-2016-b92b91098f
    Release : Fedora EPEL 7
       Type : newpackage
     Status : stable
     Issued : 2016-07-06 06:25:28
    Updated : 2016-07-05 16:40:48Description : Initial 0ad build for EPEL 7.
   Severity : None
  Installed : false

===============================================================================
  0ad-0.0.22-1.el7 0ad-data-0.0.22-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2017-d960d7834c
    Release : Fedora EPEL 7
       Type : enhancement
     Status : stable
     Issued : 2017-08-11 17:46:41
    Updated : 2020-01-09 00:13:57Description : Update to 0.0.22
   Severity : None
  Installed : false
[...]
===============================================================================
  zvbi-0.2.35-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2016-7691119a3a
    Release : Fedora EPEL 7
       Type : enhancement
     Status : stable
     Issued : 2016-03-04 18:26:56
    Updated : 2020-01-09 00:12:57Description : Update to 0.2.35
   Severity : None
  Installed : false
updateinfo info done

Display detailed information about advisories related to packages that are already installed.

$ sudo yum --cacheonly updateinfo info installed
Loaded plugins: fastestmirror

===============================================================================
  apiextractor-0.10.10-10.el7 generatorrunner-0.6.16-9.el7 pyside-tools-0.2.13-9.el7 python-pyside-1.2.2-4.el7 shiboken-1.2.2-3.el7
===============================================================================
  Update ID : FEDORA-EPEL-2015-90d91da479
    Release : Fedora EPEL 7
       Type : newpackage
     Status : stable
     Issued : 2015-12-17 10:31:02
    Updated : 2020-01-09 00:04:45       Bugs : 1140773 - Please build an EPEL7 build of python-pyside
            : 1140771 - Please build an EPEL7 build of shiboken
            : 1140770 - Please build an EPEL7 build of generatorrunner
            : 1140769 - Please build an EPEL7 build of apiextractor
Description : Initial packages for EPEL 7.
   Severity : Low

===============================================================================
  coturn-4.5.1.1-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2019-d4f26180c3
    Release : Fedora EPEL 7
       Type : newpackage
     Status : stable
     Issued : 2019-08-18 00:27:45
    Updated : 2020-01-09 00:16:01       Bugs : 1705146 - coturn fails to start because of PID file issue
            : 1733691 - Please build coturn for EPEL 7 and 8
Description : The Coturn TURN Server is a VoIP media traffic NAT traversal
            : server and gateway. It can be used as a
            : general-purpose network traffic TURN
            : server/gateway, too.
            : 
            : This implementation also includes some extra
            : features. Supported RFCs:
            : 
            : TURN specs:
            : 
            :  - RFC 5766 - base TURN specs
            :  - RFC 6062 - TCP relaying TURN extension
            :  - RFC 6156 - IPv6 extension for TURN
            :  - Experimental DTLS support as client protocol.
            : 
            : STUN specs:
            : 
            :  - RFC 3489 - "classic" STUN
            :  - RFC 5389 - base "new" STUN specs
            :  - RFC 5769 - test vectors for STUN protocol
            :    testing
            :  - RFC 5780 - NAT behavior discovery support
            : 
            : The implementation fully supports the following
            : client-to-TURN-server protocols:
            : 
            :  - UDP (per RFC 5766)
            :  - TCP (per RFC 5766 and RFC 6062)
            :  - TLS (per RFC 5766 and RFC 6062);
            :    TLS1.0/TLS1.1/TLS1.2
            :  - DTLS (experimental non-standard feature)
            : 
            : Supported relay protocols:
            : 
            :  - UDP (per RFC 5766)
            :  - TCP (per RFC 6062)
            : 
            : Supported user databases (for user repository,
            : with passwords or keys, if authentication is
            : required):
            : 
            :  - SQLite
            :  - MySQL
            :  - PostgreSQL
            :  - Redis
            : 
            : Redis can also be used for status and statistics
            : storage and notification.
            : 
            : Supported TURN authentication mechanisms:
            : 
            :  - long-term
            :  - TURN REST API (a modification of the long-term
            :    mechanism, for time-limited secret-based
            :    authentication, for WebRTC applications)
            : 
            : The load balancing can be implemented with the
            : following tools (either one or a combination of
            : them):
            : 
            :  - network load-balancer server
            :  - DNS-based load balancing
            :  - built-in ALTERNATE-SERVER mechanism.
   Severity : None

===============================================================================
  hiredis-0.12.1-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2015-0599
    Release : Fedora EPEL 7
       Type : bugfix
     Status : stable
     Issued : 2015-02-02 15:19:49
    Updated : 2020-01-09 00:12:13       Bugs : 1186213 - hiredis-0.12.1 is available
Description : == 0.12.1 - January 26, 2015 ==
            : 
            : * Fix make install: DESTDIR support, install all
            :   required files, install PKGCONF in proper
            :   location
            : * Fix make test as 32 bit build on 64 bit platform
            : 
            : == 0.12.0 - January 22, 2015 ==
            : 
            : * Add optional KeepAlive support
            : * Try again on EINTR errors
            : * Add libuv adapter
            : * Add IPv6 support
            : * Remove possibility of multiple close on same fd
            : * Add ability to bind source address on connect
            : * Add redisConnectFd() and redisFreeKeepFd()
            : * Fix getaddrinfo() memory leak
            : * Free string if it is unused (fixes memory leak)
            : * Improve redisAppendCommandArgv performance 2.5x
            : * Add support for SO_REUSEADDR
            : * Fix redisvFormatCommand format parsing
            : * Add GLib 2.0 adapter
            : * Refactor reading code into read.c
            : * Fix errno error buffers to not clobber errors
            : * Generate pkgconf during build
            : * Silence _BSD_SOURCE warnings
            : * Improve digit counting for multibulk creation
   Severity : None

===============================================================================
  libdnet-1.12-0.13.1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2018-87d4d9304b
    Release : Fedora EPEL 7
       Type : newpackage
     Status : stable
     Issued : 2018-08-08 17:17:26
    Updated : 2020-01-09 00:14:04Description :  - Add libdnet 1.12-13.1 from RHEL/CentOS 7 to EPEL 7 (limited
            :    arch pkg)
   Severity : None

===============================================================================
  libmspack-0.5-0.0.7.alpha.el7
===============================================================================
  Update ID : FEDORA-EPEL-2019-aa84623a4e
    Release : Fedora EPEL 7
       Type : security
     Status : stable
     Issued : 2019-08-24 00:32:03
    Updated : 2020-01-09 00:13:14Description : The libmspack packages contain a library providing compression
            : and extraction of the Cabinet (CAB) file format
            : used by Microsoft.
            : 
            : Security Fix(es):
            : 
            :  *   libmspack: Out-of-bounds write in
            :      mspack/cab.h (CVE-2018-18584)
            :   *  libmspack: chmd_read_headers() fails to
            :      reject filenames containing NULL bytes
            :      (CVE-2018-18585)
            : 
            : https://access.redhat.com/errata/RHSA-2019:2049
   Severity : Moderate

===============================================================================
  nginx-1.16.1-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2019-6ca75fc39a
    Release : Fedora EPEL 7
       Type : security
     Status : stable
     Issued : 2019-10-19 16:51:59
    Updated : 2019-10-15 16:23:05       Bugs : 1750857 - EPEL7 nginx package contains multiple CVEs
Description : Needs further testing on EPEL7 systems who have modified
            : configs.
   Severity : Important

===============================================================================
  python-PyGithub-1.39-5.el7 python-PyMySQL-0.9.2-2.el7 python-polib-1.0.7-10.el7 python-pretend-1.0.8-4.el7 python-process-tests-1.0.0-11.el7 python-productmd-1.20-3.el7 python-prompt_toolkit-1.0.15-2.el7 python-psutil-2.2.1-5.el7 python-ptyprocess-0.5.1-7.el7 python-pycodestyle-2.0.0-6.el7 python-pycosat-0.6.3-2.el7 python-pycryptodomex-3.7.3-2.el7 python-pyev-0.9.0-0.2.20130610gite31d137.el7 python-pygraphviz-1.3-2.rc2.el7.2 python-pymilter-1.0.3-2.el7 python-pymssql-2.1.3-3.el7 python-pypandoc-1.3.3-3.el7 python-pyroute2-0.4.13-2.el7 python-pyside-1.2.4-2.el7 python-pysocks-1.6.8-6.el7 python-pytest-catchlog-1.2.2-3.el7 python-pytest-runner-3.0-2.el7 python-pytest-xdist-1.17.1-3.el7 python-pyvirtualize-0.9-5.20181003git57d2307.el7 python-pyvmomi-6.7.1-3.el7 python-pyxs-0.4.1-2.el7 python-rencode-1.0.5-4.el7 python-responses-0.5.1-7.el7 python-rope-0.12.0-2.el7 python-rpdb-0.1.5-3.el7.1 python-rpm-macros-3-23.el7 python-ruamel-yaml-0.13.14-2.el7 python-scandir-1.9.0-2.el7 python-scripttest-1.3.0-10.el7 python-setuptools_scm-1.17.0-3.el7 python-sh-1.12.14-7.el7 python-simplejson-3.10.0-2.el7 python-simplepath-0.3.4-2.el7 python-slacker-0.12.0-4.el7 python-sphinx-autobuild-0.7.1-9.el7 python-sphinx-theme-alabaster-0.7.9-2.el7 python-spur-0.3.17-2.el7 python-structlog-17.2.0-2.el7 python-terminado-0.6-3.el7 python-texttable-1.4.0-2.el7 python-tinydb-3.10.0-2.el7 python-toml-0.9.4-4.el7 python-toolz-0.9.0-8.el7 python-traitlets-4.3.2-3.el7
===============================================================================
  Update ID : FEDORA-EPEL-2019-0f4cca7837
    Release : Fedora EPEL 7
       Type : enhancement
     Status : stable
     Issued : 2019-04-03 18:50:33
    Updated : 2019-03-13 15:19:19       Bugs : 1626231 - Review Request: python-pyvirtualize - Python module to access and manage VMware
            : 1674462 - python-rope-0.12.0 is available
Description : This update changes the main python3 in EPEL7 from python34 to
            : python36.  This is not removing python34, only
            : changing the following in the python macros.
            : 
            : * **Previous:**
            :   - python3_pkgversion = python34
            :   - python3_other_pkgversion = python36
            : * **With Update:**
            :   - python3_pkgversion = python36
            :   - python3_other_pkgversion = python34
            : 
            : This update is not just for python-rpm-macros,
            : python34 and python36.  But every EPEL7 package
            : that used those macros while being built.  Thus
            : this update has all of those packages that have
            : been rebuilt.
            : 
            : Due to bohdi limitations, the update has been
            : broken up.  Please also test the following bohdi
            : updates:
            : 
            : *
            :   https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-f2d195dada
            : *
            :   https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-9e9f81e581
            : *
            :   https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0d62608bce
            : *
            :   https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-5be892b745
            : *
            :   https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-0f4cca7837
            : *
            :   https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-ed3564d906
            : 
            : ----
            : 
            : fix versioned dependencies to pyvmomi
            : 
            : 
            : ----
            : 
            : Update to the latest upstream
   Severity : None

===============================================================================
  supervisor-3.1.4-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2017-017fbc40e8
    Release : Fedora EPEL 7
       Type : security
     Status : stable
     Issued : 2017-08-26 19:21:43
    Updated : 2020-01-09 00:07:16       Bugs : 1476143 - CVE-2017-11610 supervisor: Command injection via malicious XML-RPC request
            : 1475938 - supervisord.service file contains removed SysVStartPriority= setting and does NOT have dependency on remote user (LDAP, kerberos, NIS, etc)
Description : Update to 3.1.4.
   Severity : None

===============================================================================
  varnish-4.0.5-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2017-56ca95fe85
    Release : Fedora EPEL 7
       Type : security
     Status : stable
     Issued : 2017-08-04 13:50:14
    Updated : 2017-08-03 11:07:37       Bugs : 1477222 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests
            : 1477699 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests [epel-all]
Description : New upstream release. This is a security release, with a fix for
            : a crash bug that might be used in a denial of
            : service attack. Details from the upstream project
            : are found here:
            : 
            : http://varnish-cache.org/security/VSV00001.html
   Severity : Critical
updateinfo info done

Display detailed information about advisories related to packages that can be updated.

$ sudo yum --cacheonly updateinfo info updates
Loaded plugins: fastestmirror

===============================================================================
  epel-release-7-12
===============================================================================
  Update ID : FEDORA-EPEL-2019-020e5a5f9c
    Release : Fedora EPEL 7
       Type : enhancement
     Status : stable
     Issued : 2019-10-04 20:28:32
    Updated : 2020-01-09 00:11:30Description : Add in &infra and content variables to better understand users
            : of EPEL.
   Severity : None

===============================================================================
  varnish-4.0.5-1.el7
===============================================================================
  Update ID : FEDORA-EPEL-2017-56ca95fe85
    Release : Fedora EPEL 7
       Type : security
     Status : stable
     Issued : 2017-08-04 13:50:14
    Updated : 2017-08-03 11:07:37       Bugs : 1477222 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests
            : 1477699 - CVE-2017-12425 varnish: Missing check for integer overflow when handling chunk sizes in HTTP requests [epel-all]
Description : New upstream release. This is a security release, with a fix for
            : a crash bug that might be used in a denial of
            : service attack. Details from the upstream project
            : are found here:
            : 
            : http://varnish-cache.org/security/VSV00001.html
   Severity : Critical
updateinfo info done

Install packages related to a single or multiple advisories

Install specific advisory.

$ sudo yum --assumeyes update --advisory FEDORA-EPEL-2017-56ca95fe85
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: ftp.vectranet.pl
 * epel: ftp.icm.edu.pl
 * extras: ftp.icm.edu.pl
 * updates: mirror-pl.kielcetechnologypark.net
 --> epel-release-7-12.noarch from epel removed (updateinfo)
 --> epel-release-7-11.noarch from @extras removed (updateinfo)
1 package(s) needed (+0 related) for security, out of 2 available
Resolving Dependencies
--> Running transaction check
---> Package varnish-docs.x86_64 0:4.0.4-3.el7 will be updated
---> Package varnish-docs.x86_64 0:4.0.5-1.el7 will be an update
--> Finished Dependency Resolution

Dependencies Resolved

==================================================================================================================================================================
 Package                                   Arch                                Version                                    Repository                         Size
==================================================================================================================================================================
Updating:
 varnish-docs                              x86_64                              4.0.5-1.el7                                epel                              457 k

Transaction Summary
==================================================================================================================================================================
Upgrade  1 Package

Total download size: 457 k
Downloading packages:
epel/x86_64/prestodelta                                                                                                                    |  453 B  00:00:00     
varnish-docs-4.0.5-1.el7.x86_64.rpm                                                                                                        | 457 kB  00:00:00     
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
  Updating   : varnish-docs-4.0.5-1.el7.x86_64                                                                                                                1/2 
  Cleanup    : varnish-docs-4.0.4-3.el7.x86_64                                                                                                                2/2 
  Verifying  : varnish-docs-4.0.5-1.el7.x86_64                                                                                                                1/2 
  Verifying  : varnish-docs-4.0.4-3.el7.x86_64                                                                                                                2/2 

Updated:
  varnish-docs.x86_64 0:4.0.5-1.el7                                                                                                                               

Complete!

Install security advisories.

$ sudo yum --assumeyes update --advisory FEDORA-EPEL-2017-56ca95fe85
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: ftp.vectranet.pl
 * epel: ftp.icm.edu.pl
 * extras: ftp.icm.edu.pl
 * updates: mirror-pl.kielcetechnologypark.net
 --> epel-release-7-12.noarch from epel removed (updateinfo)
 --> epel-release-7-11.noarch from @extras removed (updateinfo)
1 package(s) needed (+0 related) for security, out of 2 available
Resolving Dependencies
--> Running transaction check
---> Package varnish-docs.x86_64 0:4.0.4-3.el7 will be updated
---> Package varnish-docs.x86_64 0:4.0.5-1.el7 will be an update
--> Finished Dependency Resolution

Dependencies Resolved

==================================================================================================================================================================
 Package                                   Arch                                Version                                    Repository                         Size
==================================================================================================================================================================
Updating:
 varnish-docs                              x86_64                              4.0.5-1.el7                                epel                              457 k

Transaction Summary
==================================================================================================================================================================
Upgrade  1 Package

Total download size: 457 k
Downloading packages:
epel/x86_64/prestodelta                                                                                                                    |  453 B  00:00:00     
varnish-docs-4.0.5-1.el7.x86_64.rpm                                                                                                        | 457 kB  00:00:00     
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
  Updating   : varnish-docs-4.0.5-1.el7.x86_64                                                                                                                1/2 
  Cleanup    : varnish-docs-4.0.4-3.el7.x86_64                                                                                                                2/2 
  Verifying  : varnish-docs-4.0.5-1.el7.x86_64                                                                                                                1/2 
  Verifying  : varnish-docs-4.0.4-3.el7.x86_64                                                                                                                2/2 

Updated:
  varnish-docs.x86_64 0:4.0.5-1.el7                                                                                                                               

Complete!

Install bugfix advisories.

$ sudo yum update --bugfix
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: ftp.vectranet.pl
 * epel: ftp.icm.edu.pl
 * extras: ftp.icm.edu.pl
 * updates: mirror-pl.kielcetechnologypark.net
 --> varnish-docs-4.0.5-1.el7.x86_64 from epel removed (updateinfo)
 --> varnish-docs-4.0.4-3.el7.x86_64 from @/varnish-docs-4.0.4-3.el7.x86_64 removed (updateinfo)
 --> epel-release-7-12.noarch from epel removed (updateinfo)
 --> epel-release-7-11.noarch from @extras removed (updateinfo)
No packages needed for security; 2 packages available
Resolving Dependencies